$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: +e1BAXQQ8ljIOeiUq+zlPw3Q8vxf9kW+sF6l6+TwNKQ= Subject key identifier: 69:29:2A:7A:8D:B3:19:3D:F0:09:00:91:C9:C0:1C:5C:E9:16:72:47 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 34D9 Signing time: Sun 02 Nov 2025 14:56:46 +0000 Manifest this update: Sun 02 Nov 2025 14:56:45 +0000 Manifest next update: Sun 09 Nov 2025 14:56:45 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: nrPPAjUGdF03MnRSatev+kgxYdqKF/Lblin4MvIZqUU=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: w/zPMK06vnyoVLL/BGNp77uAUStxaD44YXARWWRfkvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905, serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Nov 2 14:56:45 2025 GMT Not After : Nov 9 14:56:45 2025 GMT Subject: CN=6907712d-b17e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:49:5b:d0:7e:1a:96:b5:02:74:4d:2b:a8:67: 6d:8b:38:f2:5a:9b:d6:eb:28:0c:99:ce:4c:a5:e5: 36:40:28:3e:3f:75:50:60:66:d3:ea:63:38:22:78: 47:bb:78:57:5f:95:ba:df:00:95:fe:cd:9c:65:61: 8a:a1:1b:18:e1:2c:68:26:9f:b2:72:ae:c8:b1:43: 50:cc:a5:f2:88:a9:cc:ce:d5:ac:71:05:d5:c1:ea: f8:d3:29:d6:28:7a:bb:8c:f9:f5:44:08:7e:79:9e: ed:4e:fc:88:13:7f:9b:7d:55:2a:73:6f:b6:f3:d3: 33:2b:7a:55:28:5e:2e:ca:1a:5a:9a:72:28:90:c5: a9:6d:76:19:18:db:2a:4c:93:80:af:f3:0e:b0:2e: e4:e3:f7:52:e4:7b:d9:d6:b2:a5:58:9e:65:12:bc: 86:f9:f7:d1:59:b5:b9:e2:d6:66:c2:ac:11:89:9b: 17:16:4d:bd:58:59:28:87:c5:db:94:6a:a7:01:04: 72:10:00:0b:82:d6:1f:9c:6d:17:20:46:a9:5d:66: c1:1a:32:b3:0f:ea:17:17:cc:55:8b:e2:81:f3:39: 5a:79:ff:32:14:bc:a6:af:21:6f:a7:f8:78:03:2f: 09:ac:fa:09:8d:d8:d3:73:2f:6a:32:37:59:36:7d: 62:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:29:2A:7A:8D:B3:19:3D:F0:09:00:91:C9:C0:1C:5C:E9:16:72:47 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:79:2e:e4:46:e5:6b:b3:63:fb:4f:3d:54:f6:04:9f:f8:d6: b0:5a:83:5b:46:79:62:fe:84:e3:9a:db:3d:77:72:5f:0e:76: 5c:60:51:d4:b9:1e:fe:af:f6:45:49:6a:99:6e:a0:90:51:8b: a6:4a:75:aa:43:81:f8:97:3b:54:04:f0:7b:45:c2:03:75:a5: 7e:80:3b:4d:93:46:02:75:28:80:0e:48:a0:c3:5d:04:05:13: b4:a1:13:c9:5e:fe:db:c8:26:52:26:63:f4:e9:31:64:bf:80: c3:2e:94:41:41:f7:0a:02:31:56:00:d5:7f:33:b0:0e:fb:e4: 7d:27:e7:51:28:e8:c8:b3:7e:09:fe:df:40:f5:80:3e:fb:77: da:6d:cd:68:8a:d1:d3:42:21:0d:3a:95:c3:25:ae:0d:ab:30: b5:ec:fe:24:79:24:4a:b1:e6:5b:61:fa:5c:34:49:ac:3b:df: 6d:08:9d:fa:07:d8:6d:d5:81:5e:00:db:9e:8a:8a:89:e6:a7: a6:69:ca:ff:ba:a5:c1:93:63:7b:0d:42:67:5d:d5:1c:51:27: 5f:35:0a:71:da:c6:26:0b:2c:43:3e:89:e8:b1:4c:fe:c8:77: 90:4d:06:a3:70:15:47:29:32:bb:ef:11:7f:e9:ae:a1:8d:bf: df:44:b5:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjUxMTAyMTQ1NjQ1WhcNMjUxMTA5MTQ1NjQ1WjAYMRYwFAYD VQQDEw02OTA3NzEyZC1iMTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0lb0H4alrUCdE0rqGdtizjyWpvW6ygMmc5MpeU2QCg+P3VQYGbT6mM4InhH u3hXX5W63wCV/s2cZWGKoRsY4SxoJp+ycq7IsUNQzKXyiKnMztWscQXVwer40ynW KHq7jPn1RAh+eZ7tTvyIE3+bfVUqc2+289MzK3pVKF4uyhpamnIokMWpbXYZGNsq TJOAr/MOsC7k4/dS5HvZ1rKlWJ5lEryG+ffRWbW54tZmwqwRiZsXFk29WFkoh8Xb lGqnAQRyEAALgtYfnG0XIEapXWbBGjKzD+oXF8xVi+KB8zlaef8yFLymryFvp/h4 Ay8JrPoJjdjTcy9qMjdZNn1iBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkpKnqN sxk98AkAkcnAHFzpFnJHMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKeS7kRuVrs2P7Tz1U9gSf+NawWoNbRnli/oTjmts9d3JfDnZcYFHU uR7+r/ZFSWqZbqCQUYumSnWqQ4H4lztUBPB7RcIDdaV+gDtNk0YCdSiADkigw10E BRO0oRPJXv7byCZSJmP06TFkv4DDLpRBQfcKAjFWANV/M7AO++R9J+dRKOjIs34J /t9A9YA++3fabc1oitHTQiENOpXDJa4NqzC17P4keSRKseZbYfpcNEmsO99tCJ36 B9ht1YFeANueioqJ5qemacr/uqXBk2N7DUJnXdUcUSdfNQpx2sYmCyxDPonosUz+ yHeQTQajcBVHKTK77xF/6a6hjb/fRLWZ -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:06 2025 by rpki-client